Uploaded image for project: 'Confluence Server and Data Center'
  1. Confluence Server and Data Center
  2. CONFSERVER-15945

Inconsistent validation of usernames between admin-added and public signup

    XMLWordPrintable

Details

    Description

      As an administrator, try to add a user with a username such as "a+b"

      The new user will be created, but the username is stripped of the plus and so created as "a b"

      Now enable public signup, and create a new user with username "a+b". This will succeed.

      Allowing users with dodgy characters causes issues such as CONF-15920 and CONF-15921. The validation on usernames for public signup should be at least as strict as the administrative add user screen.

      Also, the UI should give a warning message, rather than silently stripping characters.

      Attachments

        Issue Links

          Activity

            People

              nbhawnani Niraj Bhawnani
              mhrynczak Mark Hrynczak (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: